[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[cobalt-users] SMTP server down, NOT ANY MORE!!!!

Subject: [cobalt-users] SMTP server down, NOT ANY MORE!!!!
From: jale@xxxxxxxxxx
Date: Thu Aug 29 17:45:00 2002
List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>

In case anyone is interested, I believe my SMTP down issue is resolved. Itwas the RAQ, it was our host-site-company. I received the email below fromthem late this afternoon, and since they changed their side we have beenFANTASTIC. What they changed has fixed so many things, such as:1) my email was logging on very slowly, send and receive, now it isinstantaneous2) ftp logon was very slow, even from an NT box sitting right next to theRAQ, like 5 seconds just to logon, another 3 to get the directory listing,now it is instantaneous

I have not lost SMTP for about 5 hours now, I had been losing it every30-60 minutes.


The list of what is working better goes on. Here's what was found

Danny,
I think I found the problem. It looks like your RAQ server is acting asit's own DNS server. The access-list on our router didn't allow yourserver to do DNS lookups to other DNS servers on the Internet. We wereassuming you were using our DNS servers of 216.182.xxx.xxx and216.182.xxx.yyy I've opened up your access list slightly to allow UDPtraffic from port 53 on any server on the Internet to reach your server onports higher than 1023. This is the default behavior of many DNS servers,to use high UDP ports for receiving answers to DNS queries. Once I addedthat line, all your services sped up a lot. I think this fixed theproblem. Let me know. Below is your current access list:
....
If you want to make it a little more secure, you can set Bind to use aquery source port of 53 (which I'll have to reconfigure the access listagain to allow) so all the answers to DNS queries return on port 53. Ifyou want it even more secure, setup your DNS server to use forwarders andpoint it at our DNS servers. I'll then be able to block the traffic above1023 (originating from port 53) to your RAQ server since you'll be askingour DNS servers to resolve everything.

Hope this can help someone else out there, at least it will be in thearchives now.

Thanks for all the assistance, a special thanks to Joe at hardynet whogenerously offered to lend personal assistance.


Great group you are!!!
Jale, Danny is real life.

Prev by Date: RE: [cobalt-users] multiple admin logons
Next by Date: Re: [cobalt-users] Postmaster notify: unknown mailer error 13
Previous by thread: [cobalt-users] Qube 3 User Account
Next by thread: [cobalt-users] RAQ550 General Questions

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index